Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: MySQL command-line client HTML injection vulnerability
Oct 08 2008 08:26PM
Michael Scheidell (scheidell secnap net)
> Hi Thomas,
> This bug was fixed in a MySQL release dated 01 May 2008. It is now 01
> Oct 2008 - 5 months after the bug was released. So why exactly is this
> news? Did I miss something here?
Not fixed in any version I know of.
Patch has been available for 5 months, but this has not gotten ...
[ more ]
Copyright 2010, SecurityFocus